CVE-2019-1657
MEDIUMCisco AMP Threat Grid Appliance < 2.5 and Cloud < 3.5.68 - Authenticated Sensitive Information Exposure via API Key
Title source: llmDescription
A vulnerability in Cisco AMP Threat Grid could allow an authenticated, remote attacker to access sensitive information. The vulnerability is due to unsafe creation of API keys. An attacker could exploit this vulnerability by using insecure credentials to gain unauthorized access to the affected device. An exploit could allow the attacker to gain unauthorized access to information by using the API key credentials.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-threat-grid
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/106711
Scores
CVSS v3
4.3
EPSS
0.0145
EPSS Percentile
70.1%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-200
Status
published
Products (2)
cisco/amp_threat_grid_appliance
< 2.5
cisco/amp_threat_grid_cloud
< 3.5.68
Published
Jan 24, 2019
Tracked Since
Feb 18, 2026